Pages

Thursday, August 6, 2015

Finding a needle in a needle stack (Hunting the bad guys)

If you're performing incident response you understand the pain of looking for through heaps of data and alerts that wind you down a rabbit hole. This is not only wasting your time, but it's having your eye's off the alerts that really matter, if they're even showing up. You're getting WAY to much data to your screen on a daily basis and we need to start being more focused with the alerts we receive by utilizing the intelligence of the network.

In this article I write about the technology and ways to achieve this goal. You can read it here.